Skip to content

Account Deprovisioning Scenarios

I just posted this article in the Greatest Hits series of the ILM Technet forum. It describes some of the methods and considerations around disabling and deleting users accounts with ILM.

Continue reading ›

2010 01 26 Carol ILM 2007
MIIS 2003
Uncategorized Comments (0) Permalink

Group Management Comparison

Following on from my last post about the overlaps between FIM and Exchange 2010 I wanted to clarify for myself the group management capabilities in FIM, Exchange 2010 and ILM.

Warning: I will have to revisit this post – as I haven’t yet installed Exchange 2010 in a production environment the Exchange comments are based on reading rather than hands-on experience, and in particular I’m unsure about the management of email-enabled Security groups.
Continue reading ›

2009 12 31 Carol Exchange 2010
FIM 2010
Groups
ILM 2007 Comments (0) Permalink

Is there too much overlap between FIM 2010 and Exchange 2010?

I’ve been getting myself up to speed on the new feaures of Exchange 2010, and some of them look a little familiar…

Continue reading ›

2009 12 18 Carol Exchange 2010
FIM 2010 Comments (0) Permalink

Five things about MPRs

Next in my “Five things about FIM” posts – five things I have learnt about Management Policy Rules.

Continue reading ›

2009 12 13 Carol FIM 2010 Comments (0) Permalink

Five things about the FIM Portal

I’m having a big FIM week this week – in fact it’s more like a FIM Fortnight! I’ve delivered a three day training, demonstrated the product to a client, and I’m presenting FIM at a half-day seminar next week. (See here if you happen to be in Vaud, CH and you’d like to come.)

So while I’m doing and thinking all things FIM I’ve decided to start a little “Five things about” blog series on different aspects of the new platform. To start – some generalities about the FIM Portal (aka All The New Sharepointy Stuff).

Continue reading ›

2009 12 05 Carol FIM 2010 Comments Off Permalink

Managing Exchange 2000/2003/2007 with ILM 2007

I have just posted this article in the Greatest Hits series on the ILM Technet forum.

http://social.technet.microsoft.com/Forums/en-US/identitylifecyclemanager/thread/f8ad045d-7252-4cd1-a189-d704a8f99129

The article covers various management tasks you can acheive with the standard AD MA, including provisioning and updating of users, mailboxes, contacts and distribution groups. There are quite a few code samples as well. Continue reading ›

2009 11 08 Carol Exchange 2003
Exchange 2007
ILM 2007 Comments (0) Permalink

A real life SCR failover

Quite unexpectedly this week, I got to genuinely use SCR “in anger” when I killed a client’s production Exchange 2007 server by attempting to install SP2 on it (for that whole sorry story see http://social.technet.microsoft.com/Forums/en/exchangesoftwareupdate/thread/713d2b17-f19d-4eaf-8146-c51f59942d08?prof=required). I’ll keep my swearing about SP2 off the page here and focus on the hero of the week – which was SCR!

Continue reading ›

2009 11 06 Carol Exchange 2007 Comments Off Permalink

Creating user home directories – Windows version

I last blogged about provisioning home directories such a long time ago that I talked about Netware. I also used a SQL table alongside to keep track of a status field as I was doing some end-of-life management – zipping up the folder and stowing it in an archive location.

But we don’t need to be that fancy. If all you want is to create a regular Windows-type home folder, at the same time as you create the AD user account, then here’s a way to do with an XMA.
Continue reading ›

2009 09 21 Carol AD
ILM 2007 Comments (0) Permalink

ExternalEmailAddress is mandatory on MailUser

I just got this error while attempting to provision Exchange 2007 users with ILM 2007 FP1:

Event Type:    Error
Event Source:    MIIServer
Event Category:    Server
Event ID:    6801
Date:        15.09.2009
Time:        10:14:02
User:        N/A
Computer:    ILMSERVER
Description:
The extensible extension returned an unsupported error in MIIS.
The stack trace is:

"Microsoft.MetadirectoryServices.ExtensionException:
**** ERROR ****

ExternalEmailAddress is mandatory on MailUser.

**** END ERROR ****

**** ERROR ****

The mail contact and mail user must have a valid external e-mail address.

**** END ERROR ****

at Exch2007Extension.Exch2007ExtensionClass.AfterExportEntryToCd(Byte[] origAnchor, String origDN, String origDeltaEntryXml, Byte[] newAnchor, String newDN, String failedDeltaEntryXml, String errorMessage)
Microsoft Identity Integration Server 3.3.0118.0"

This event had been asked about on the Technet forum, but the answers talked about rollup versions – and I had RU9 on both the Exchange and ILM servers.

Eventually I figured out there was a typo in my homeMDB string. The clue was that all the expected mail attributes were populated in AD, except homeMDB.

Now what “ExternalEmailAddress” has to do with homeDMB I do not know!

2009 09 15 Carol Exchange 2007
ILM 2007 Comments (1) Permalink

Wordpress Worm

There’s a worm about that attacks blogs via subscriber accounts. I’ve noticed a few recent registrations without any subsequent comment – and really the only reason to register on my blog is to comment – so I did think this odd. For security I have deleted all recent accounts that registered and did not comment. If I have deleted a genuine account, please accept my apologies – I will of course welcome your re-registration and comments!

If anyone happens to notice any weird content or broken or inappropriate links I’d be much obliged for a heads-up.

Thanks,  Carol.

2009 09 06 Carol Uncategorized Comments (0) Permalink